Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-09-2013 02
Ran by Klient Vobis (administrator) on VOBIS-2E202252E on 17-09-2013 07:32:56
Running from F:\
Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\WINDOWS\System32\SCardSvr.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(COMODO) C:\Program Files\Comodo\BackUp\CmdBkSvc.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
( ) C:\WINDOWS\system32\lxeacoms.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS32.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Panasonic Communications Co., Ltd.) C:\PROGRA~1\PANASO~1\LocalCom\lmsrvnt.exe
(Panasonic) C:\PROGRA~1\PANASO~1\TRAPMO~1\Trapmnnt.exe
(HP) C:\WINDOWS\system32\HPZipm12.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
(VIA Technologies) C:\Program Files\VIA\RAID\raid_tool.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE
(Microsoft Corporation) C:\WINDOWS\vVX1000.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
() C:\Program Files\Lexmark S300-S400 Series\lxeamon.exe
() C:\Program Files\Lexmark S300-S400 Series\ezprint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] - RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [RaidTool] - C:\Program Files\VIA\RAID\raid_tool.exe [589824 2004-10-11] (VIA Technologies)
HKLM\...\Run: [SoundMan] - C:\Windows\SOUNDMAN.EXE [90112 2005-09-22] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [LifeCam] - C:\Program Files\Microsoft LifeCam\LifeExp.exe [275800 2007-01-13] (Microsoft Corporation)
HKLM\...\Run: [VX1000] - C:\WINDOWS\vVX1000.exe [707360 2006-12-06] (Microsoft Corporation)
HKLM\...\Run: [TrueImageMonitor.exe] - C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2595480 2007-09-14] (Acronis)
HKLM\...\Run: [AcronisTimounterMonitor] - C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe [905056 2007-09-14] (Acronis)
HKLM\...\Run: [Acronis Scheduler2 Service] - C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [140568 2007-09-14] (Acronis)
HKLM\...\Run: [lxeamon.exe] - C:\Program Files\Lexmark S300-S400 Series\lxeamon.exe [770728 2011-01-24] ()
HKLM\...\Run: [EzPrint] - C:\Program Files\Lexmark S300-S400 Series\ezprint.exe [148280 2011-01-24] ()
HKLM\...\Run: [Lexmark S300-S400 Series Fax Server] - C:\Program Files\Lexmark S300-S400 Series\fm3032.exe [316072 2011-01-24] ()
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-06-20] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
Winlogon\Notify\WgaLogon: C:\Windows\system32\WgaLogon.dll (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0 relog_ap

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.wp.pl/?homepage&bv=1
BHO: Lexmark Pasek narzędzi - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Lexmark  - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Lexmark Pasek narzędzi - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
Toolbar: HKCU -&Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU -&Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU -Lexmark Pasek narzędzi - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
DPF: {1A781DED-C22D-4153-3213-A3211E29DF13} http://67.15.101.33/g_bin/pl/cards_2_0_0_77.cab
DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} http://slimak.onet.pl/_m/wirusy/ArcaOnline.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.2.cab
DPF: {4FEE6316-7B6F-4A6C-BD4E-4157C59A9E9D} http://static.s2g.gate5.de/ovi_maps/OviMaps_4.0.12.12.cab
DPF: {62789780-B744-11D0-986B-00609731A21D} http://www.mapa.lodz.pl/VIEWERS/mgaxctrl.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {83AFB5CA-ED35-11D4-A452-0080C8D85045} http://67.15.101.33/g_bin/pl/poker_2_0_0_49.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A41} https://www.pekaobiznes24.pl/components/1,3,0,82/SignActivXPEKAO.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C1} http://67.15.101.3/g_bin/pl/billard8_2_0_0_34.cab
DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C5} http://67.15.101.3/g_bin/pl/snooker_2_0_0_30.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 194.63.133.4 194.63.132.4

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U35) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_171.dll ()
CHR Plugin: (Java Deployment Toolkit 6.0.350.10) - C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\DOCUME~1\KLIENT~1\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\DOCUME~1\KLIENT~1\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Skype Click to Call) - C:\DOCUME~1\KLIENT~1\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0
CHR Extension: (Chrome In-App Payments service) - C:\DOCUME~1\KLIENT~1\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\DOCUME~1\KLIENT~1\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

========================== Services (Whitelisted) =================

R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [427288 2007-09-14] (Acronis)
R2 ComodoBackupService; C:\Program Files\Comodo\BackUp\CmdBkSvc.exe [1023488 2008-09-03] (COMODO)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe [81920 2009-07-22] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe [2736128 2009-07-22] (Firebird Project)
S2 lxeaCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxeaserv.exe [193192 2010-04-14] (Lexmark International, Inc.)
R2 lxea_device; C:\WINDOWS\system32\lxeacoms.exe [598696 2010-04-14] ( )
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-06-20] (Microsoft Corporation)
R2 Panasonic Local Printer Service; C:\PROGRA~1\PANASO~1\LocalCom\lmsrvnt.exe [36864 2004-08-03] (Panasonic Communications Co., Ltd.)
R2 Panasonic Trap Monitor Service; C:\PROGRA~1\PANASO~1\TRAPMO~1\Trapmnnt.exe [69632 2004-02-24] (Panasonic)
R2 Skype C2C Service; C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 TryAndDecideService; C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [492600 2007-09-14] ()
R2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"

==================== Drivers (Whitelisted) ====================

R1 A2DDA; C:\EEK\RUN\a2ddax86.sys [22056 2013-09-15] (Emsisoft GmbH)
S3 ACSSCR; C:\Windows\System32\DRIVERS\a38usb.sys [33536 2006-03-24] (Advanced Card Systems Ltd)
R3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [3727680 2005-09-22] (Realtek Semiconductor Corp.)
S3 cleanhlp; C:\EEK\Run\cleanhlp32.sys [50200 2013-09-15] (Emsisoft GmbH)
R2 DgiVecp; C:\Windows\System32\Drivers\DgiVecp.sys [41984 2004-05-17] (DeviceGuys, Inc.)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2005-03-08] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2005-03-08] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21744 2005-03-08] (HP)
R2 Kmm4xNT; C:\Windows\System32\Drivers\Kmm4xNT.sys [95484 2000-11-25] (DATOM Dariusz Cielebąk)
S3 KMM4xUSB; C:\Windows\System32\Drivers\KMM4xUSB.sys [101884 2003-06-02] (DATOM Dariusz Cielebąk)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 RTL8023xp; C:\Windows\System32\DRIVERS\Rtlnicxp.sys [70144 2004-04-13] (Realtek Semiconductor Corporation                           )
S3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2004-08-04] (Realtek Semiconductor Corporation)
R0 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [368736 2008-12-15] (Acronis)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2008-12-15] (Acronis)
R1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [81232 2013-02-18] (Windows (R) 2000 DDK provider)
R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IM.sys [452816 2013-02-18] (Paragon)
R1 Uim_Vim; C:\Windows\System32\Drivers\Uim_Vim.sys [283600 2013-02-18] (Paragon)
R0 viamraid; C:\Windows\System32\drivers\viamraid.sys [60672 2004-07-06] (VIA Technologies inc,.ltd)
S3 VX1000; C:\Windows\System32\DRIVERS\VX1000.sys [1963680 2006-12-06] (Microsoft Corporation)
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

========================== Drivers MD5 =======================

C:\EEK\RUN\a2ddax86.sys B0CC0B50441372157F31C4C023D43A3E
C:\Windows\System32\DRIVERS\ACPI.sys 05118282F5D039595A2B92B4A4AFE197
C:\Windows\System32\Drivers\ACPIEC.sys 66A42B7DB194E24B973BBCCE840A0F3F
C:\Windows\System32\DRIVERS\a38usb.sys B6A0F723A54884E77FCE0F69083F90C9
C:\Windows\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\Windows\System32\drivers\afd.sys 1E44BC1E83D8FD2305F8D452DB109CF9
C:\Windows\System32\drivers\ALCXWDM.SYS 93F93A8E3E14CBBF1CE9A5AF1A70C095
C:\Windows\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\Windows\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\Windows\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\Windows\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\Windows\System32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\Windows\System32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\Windows\System32\DRIVERS\CCDECODE.sys 0BE5AEF125BE881C4F854C554F2B025C
C:\Windows\System32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\Windows\System32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\Windows\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
C:\EEK\Run\cleanhlp32.sys 85F1DDEA3C10921190CDBA107B22590C
C:\Windows\System32\Drivers\DgiVecp.sys A5034F77B278F07E224FE07CF98A8B76
C:\Windows\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\Windows\System32\drivers\dmboot.sys BC9219ABC5696942E6F9AC8A9B28670F
C:\Windows\System32\drivers\dmio.sys 5FA232E3BA6E1346F9F5A7E519320CB0
C:\Windows\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\Windows\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\Windows\System32\DRIVERS\Dot4.sys 3E4B043F8BC6BE1D4820CC6C9C500306
C:\Windows\System32\DRIVERS\Dot4Prt.sys 77CE63A8A34AE23D9FE4C7896D1DEBE7
C:\Windows\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\Windows\System32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
C:\Windows\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\Windows\System32\Drivers\Fips.sys 09E2A4D33F81A06A8AAB2BA0A0B5D235
C:\Windows\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\Windows\System32\drivers\fltmgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\Windows\System32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
C:\Windows\System32\DRIVERS\ftdisk.sys ED6D921D8AB423138FB35BEEE6D6A6CB
C:\Windows\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\Windows\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
C:\Windows\System32\DRIVERS\HPZid412.sys 9F1D80908658EB7F1BF70809E0B51470
C:\Windows\System32\DRIVERS\HPZipr12.sys F7E3E9D50F9CD3DE28085A8FDAA0A1C3
C:\Windows\System32\DRIVERS\HPZius12.sys CF1B7951B4EC8D13F3C93B74BB2B461B
C:\Windows\System32\Drivers\HTTP.sys F80A415EF82CD06FFAF0D971528EAD38
C:\Windows\System32\DRIVERS\i8042prt.sys 177B372AF55C4460D0968B5F1D02AA1C
C:\Windows\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\Windows\System32\DRIVERS\intelppm.sys DA153EDC09DE8C4F846C085CAA39D1CC
C:\Windows\System32\drivers\ip6fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\Windows\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\Windows\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\Windows\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\Windows\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\Windows\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\Windows\System32\DRIVERS\isapnp.sys C8EEF2E93835B81BD335DE2123121283
C:\Windows\System32\DRIVERS\kbdclass.sys 2AECA45D4AEAACBDCB77AD11184E4601
C:\Windows\System32\DRIVERS\kbdhid.sys F718DCDDAC2544BC693F22977D06F78B
C:\Windows\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\Windows\System32\Drivers\Kmm4xNT.sys DB8023811FDECAD413CF775EFF576357
C:\Windows\System32\Drivers\KMM4xUSB.sys 5CA73861BB7FBE48EB46E0D4BF04FE75
C:\Windows\System32\Drivers\KSecDD.sys B467646C54CC746128904E1654C750C1
C:\Windows\System32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\Windows\System32\Drivers\Modem.sys 4A068DB7DC37D5AFEDB6512D2931D7B3
C:\Windows\System32\DRIVERS\mouclass.sys FBED3DF6B884F8CF00447B73507F2C48
C:\Windows\System32\DRIVERS\mouhid.sys ECEC1E6CD558AB80F944F31326E9D3B5
C:\Windows\System32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\Windows\System32\DRIVERS\MpFilter.sys 24406D75B40F0F6B3C1AC7031D734565
C:\Windows\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
C:\Windows\System32\DRIVERS\mrxsmb.sys 7D304A5EB4344EBEEAB53A2FE3FFB9F0
C:\Windows\System32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\Windows\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\Windows\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\Windows\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\Windows\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\Windows\System32\drivers\MSTEE.sys E53736A9E30C45FA9E7B5EAC55056D1D
C:\Windows\System32\Drivers\Mup.sys DE6A75F5C270E756C5508D94B6CF68F5
C:\Windows\System32\DRIVERS\NABTSFEC.sys 5B50F1B2A2ED47D560577B221DA734DB
C:\Windows\System32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\Windows\System32\DRIVERS\NdisIP.sys 7FF1F1FD8609C149AA432F95A8163D97
C:\Windows\System32\DRIVERS\ndistapi.sys 0109C4F3850DFBAB279542515386AE22
C:\Windows\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\Windows\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\Windows\System32\Drivers\NDProxy.sys 9282BD12DFB069D3889EB3FCC1000A9B
C:\Windows\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\Windows\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\Windows\System32\drivers\ccdcmb.sys B0A67DE1A128389AEA4D42C5A56215FD
C:\Windows\System32\drivers\ccdcmbo.sys 025C54F9F8C8BC1894EA38529C742C54
C:\Windows\System32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\Windows\System32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\Windows\System32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\Windows\System32\DRIVERS\nv4_mini.sys C823D5E609762C075F26F7FC56690F34
C:\Windows\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\Windows\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\Windows\System32\DRIVERS\parport.sys 2D4CDAEBCED17743AA9E25D3016DC229
C:\Windows\System32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\Windows\System32\Drivers\ParVdm.sys 453EC2C2A20A1382F564541918520EEB
C:\Windows\System32\DRIVERS\pccsmcfd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pci.sys 6862C69168D787B85A7D95CCD33C694E
C:\Windows\System32\Drivers\Pcmcia.sys 8DB27F1AE9593C94095485305A583862
C:\Windows\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\Windows\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
C:\Windows\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\Windows\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\Windows\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\Windows\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\Windows\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\Windows\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\Windows\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\Windows\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1
C:\Windows\System32\Drivers\RDPWD.sys 43AF5212BD8FB5BA6EED9754358BD8F7
C:\Windows\System32\DRIVERS\redbook.sys E0C7BBD18040B58651BAC700C804861D
C:\Windows\System32\DRIVERS\Rtlnicxp.sys E9877AA069DC11B03DBD1D33B8B2A3CA
C:\Windows\System32\DRIVERS\RTL8139.SYS D507C1400284176573224903819FFDA3
C:\Windows\System32\DRIVERS\secdrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
C:\Windows\System32\DRIVERS\serial.sys D07B02F88165E69B9F17162CF592C8A6
C:\Windows\System32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\Windows\System32\DRIVERS\SLIP.sys 866D538EBE33709A5C9F5C62B73B7D14
C:\Windows\System32\DRIVERS\snapman.sys BCC773872041AA59BC9A6CF770FB32E2
C:\Windows\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\Windows\System32\DRIVERS\sr.sys EB032822BE406EF220D546DDFFCF0002
C:\Windows\System32\DRIVERS\srv.sys 47DDFC2F003F7F9F0592C6874962A2E7
C:\Windows\System32\DRIVERS\StreamIP.sys 77813007BA6265C4B6098187E6ED79D2
C:\Windows\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\Windows\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\Windows\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\Windows\System32\DRIVERS\tcpip.sys 9AEFA14BD6B182D61E3119FA5F436D3D
C:\Windows\System32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\Windows\System32\DRIVERS\tdrpman.sys 603D59923828C6C213B84B14CBF32083
C:\Windows\System32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\Windows\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\Windows\System32\DRIVERS\tifsfilt.sys B0B3122BFF3910E0BA97014045467778
C:\Windows\System32\DRIVERS\timntr.sys 13BFE330880AC0CE8672D00AA5AFF738
C:\Windows\System32\DRIVERS\uagp35.sys D85938F272D1BCF3DB3A31FC0A048928
C:\Windows\System32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\Windows\System32\DRIVERS\UimBus.sys 3CC218CF2A6443478B0EF705B803C504
C:\Windows\System32\Drivers\Uim_IM.sys 803BDC7127F26F01E19070D4B26C037F
C:\Windows\System32\Drivers\Uim_Vim.sys AA16B72277CDCE5310DEF8BB8F5DB695
C:\Windows\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\Windows\System32\DRIVERS\usbser_lowerflt.sys 78B74AF8727A28C128E164E9B53A5413
C:\Windows\System32\drivers\usbaudio.sys E919708DB44ED8543A7C017953148330
C:\Windows\System32\DRIVERS\usbccgp.sys 173F317CE0DB8E21322E71B7E60A27E8
C:\Windows\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7
C:\Windows\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\Windows\System32\DRIVERS\usbprint.sys A717C8721046828520C9EDF31288FC00
C:\Windows\System32\DRIVERS\usbscan.sys A0B8CF9DEB1184FBDD20784A58FA75D4
C:\Windows\System32\drivers\usbser.sys 1C888B000C2F9492F4B15B5B6B84873E
C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys 4F8FBC51A1C0A17310846B417A447F91
C:\Windows\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
C:\Windows\System32\DRIVERS\usbuhci.sys 26496F9DEE2D787FC3E61AD54821FFE6
C:\Windows\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\Windows\System32\DRIVERS\viaide.sys 3B3EFCDA263B8AC14FDF9CBDD0791B2E
C:\Windows\System32\drivers\viamraid.sys 44056E9FEE477F512EE58BCFEE949621
C:\Windows\System32\Drivers\VolSnap.sys 56B191AC5FC0DF219949C95A6C87AFE7
C:\Windows\System32\DRIVERS\VX1000.sys 579043E803FA388F6B3EB2C275CEA542
C:\Windows\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\Windows\System32\DRIVERS\Wdf01000.sys D918617B46457B9AC28027722E30F647
C:\Windows\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\Windows\System32\DRIVERS\wpdusb.sys CF4DEF1BF66F06964DC0D91844239104
C:\Windows\System32\drivers\ws2ifsl.sys 6ABE6E225ADB5A751622A9CC3BC19CE8
C:\Windows\System32\DRIVERS\WSTCODEC.SYS C98B39829C2BBD34E454150633C62C78
C:\Windows\System32\DRIVERS\WudfPf.sys 6FF66513D372D479EF1810223C8D20CE
C:\Windows\System32\DRIVERS\wudfrd.sys AC13CB789D93412106B0FB6C7EB2BCB6

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-17 07:18 - 2013-09-17 07:18 - 00000000 ____D C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\PCHealth
2013-09-16 23:15 - 2013-09-17 07:16 - 00000000 ____D C:\FRST
2013-09-16 18:25 - 2013-09-16 18:25 - 00275181 _____ C:\Documents and Settings\Klient Vobis\Moje dokumenty\WindowsUpdateDiagnostic.diagcab
2013-09-15 21:00 - 2013-09-15 21:00 - 00000000 ____D C:\WINDOWS\CSC
2013-09-15 19:23 - 2013-09-15 19:23 - 00000000 ____D C:\EEK
2013-09-15 19:22 - 2013-09-15 19:22 - 00000000 ____D C:\Documents and Settings\Klient Vobis\Ustawienia lokalne\Dane aplikacji\NPE
2013-09-15 19:22 - 2013-09-15 19:22 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Norton
2013-09-15 19:22 - 2013-09-15 19:22 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\HitmanPro
2013-09-15 18:56 - 2013-09-15 20:59 - 00065536 _____ C:\WINDOWS\system32\config\Doctor Web.evt
2013-09-15 18:56 - 2013-09-15 19:21 - 00000000 ____D C:\Documents and Settings\Klient Vobis\Doctor Web
2013-09-15 10:37 - 2013-09-15 11:03 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-09-15 10:10 - 2013-09-15 10:10 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji\Macromedia
2013-09-15 10:10 - 2013-09-15 10:10 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji\Adobe
2013-09-12 11:21 - 2013-09-12 11:22 - 00012644 _____ C:\WINDOWS\KB2870699-IE8.log
2013-09-12 11:19 - 2013-09-12 11:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-09-12 11:19 - 2013-09-12 11:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-09-12 11:19 - 2013-09-12 11:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-09-12 09:57 - 2013-09-12 11:19 - 00010608 _____ C:\WINDOWS\KB2876315.log
2013-09-12 09:56 - 2013-09-12 11:19 - 00009983 _____ C:\WINDOWS\KB2876217.log
2013-09-12 09:55 - 2013-09-12 11:19 - 00009080 _____ C:\WINDOWS\KB2864063.log
2013-09-04 12:18 - 2013-09-04 12:18 - 00013824 _____ C:\Documents and Settings\Klient Vobis\Moje dokumenty\COMMON-oferta na wentylację.xls
2013-09-03 10:03 - 2013-09-03 10:03 - 00001684 _____ C:\Documents and Settings\Klient Vobis\Moje dokumenty\fundament prasa - blok 3 - układ zbrojenia + technologia 29.08.dsd
2013-08-30 10:22 - 2013-08-30 10:22 - 00004135 _____ C:\WINDOWS\KB2834904-v2.log
2013-08-30 10:22 - 2013-08-30 10:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-08-24 15:15 - 2013-08-24 15:15 - 00000729 _____ C:\WINDOWS\DtcInstall.log

==================== One Month Modified Files and Folders =======

2013-09-17 07:31 - 2009-07-15 17:04 - 00000476 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{95F7CFC2-7F8E-4410-817A-653CFB723D68}.job
2013-09-17 07:29 - 2013-02-11 19:51 - 00002436 _____ C:\Documents and Settings\All Users\lxea.log
2013-09-17 07:29 - 2011-12-28 21:04 - 00491916 _____ C:\Documents and Settings\All Users\lxeascan.log
2013-09-17 07:29 - 2010-12-18 18:50 - 00001044 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-17 07:29 - 2004-10-29 10:50 - 00017145 _____ C:\WINDOWS\system32\nvapps.xml
2013-09-17 07:29 - 2004-08-04 14:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-09-17 07:28 - 2012-10-02 16:01 - 00000406 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2013-09-17 07:28 - 2006-03-10 12:57 - 01840822 _____ C:\WINDOWS\WindowsUpdate.log
2013-09-17 07:18 - 2013-09-17 07:18 - 00000000 ____D C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\PCHealth
2013-09-17 07:18 - 2006-03-10 13:36 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-09-17 07:18 - 2006-03-10 13:36 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-09-17 07:18 - 2006-03-10 13:02 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-09-17 07:18 - 2006-03-10 13:02 - 00000000 ___HD C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji
2013-09-17 07:17 - 2006-03-10 13:32 - 00000292 ___SH C:\Documents and Settings\Klient Vobis\ntuser.ini
2013-09-17 07:17 - 2006-03-10 13:02 - 00032442 _____ C:\WINDOWS\SchedLgU.Txt
2013-09-17 07:16 - 2013-09-16 23:15 - 00000000 ____D C:\FRST
2013-09-17 07:16 - 2007-08-20 14:30 - 00000000 ____D C:\Program Files\Google
2013-09-17 07:06 - 2006-08-02 20:42 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB916595$
2013-09-17 07:01 - 2010-12-18 18:50 - 00001048 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-17 00:01 - 2011-12-12 19:00 - 00001926 _____ C:\WINDOWS\epplauncher.mif
2013-09-16 23:30 - 2006-03-10 13:32 - 00000000 ___RD C:\Documents and Settings\Klient Vobis\Moje dokumenty
2013-09-16 22:06 - 2013-07-16 10:02 - 00050446 _____ C:\WINDOWS\setupapi.log
2013-09-16 18:27 - 2006-09-05 08:46 - 00000000 __SHD C:\Documents and Settings\Klient Vobis\UserData
2013-09-16 18:25 - 2013-09-16 18:25 - 00275181 _____ C:\Documents and Settings\Klient Vobis\Moje dokumenty\WindowsUpdateDiagnostic.diagcab
2013-09-16 17:53 - 2006-08-31 16:52 - 00000000 ____D C:\Program Files\Puzzle
2013-09-16 17:33 - 2010-05-12 08:13 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB978542$
2013-09-15 21:01 - 2006-03-10 13:32 - 00000000 ____D C:\Documents and Settings\Klient Vobis\Pulpit
2013-09-15 21:00 - 2013-09-15 21:00 - 00000000 ____D C:\WINDOWS\CSC
2013-09-15 20:59 - 2013-09-15 18:56 - 00065536 _____ C:\WINDOWS\system32\config\Doctor Web.evt
2013-09-15 20:58 - 2006-03-10 13:34 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2013-09-15 19:23 - 2013-09-15 19:23 - 00000000 ____D C:\EEK
2013-09-15 19:22 - 2013-09-15 19:22 - 00000000 ____D C:\Documents and Settings\Klient Vobis\Ustawienia lokalne\Dane aplikacji\NPE
2013-09-15 19:22 - 2013-09-15 19:22 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Norton
2013-09-15 19:22 - 2013-09-15 19:22 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\HitmanPro
2013-09-15 19:22 - 2006-03-10 13:34 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2013-09-15 19:22 - 2006-03-10 13:32 - 00000000 ___HD C:\Documents and Settings\Klient Vobis\Ustawienia lokalne\Dane aplikacji
2013-09-15 19:21 - 2013-09-15 18:56 - 00000000 ____D C:\Documents and Settings\Klient Vobis\Doctor Web
2013-09-15 18:56 - 2006-03-10 13:32 - 00000000 ____D C:\Documents and Settings\Klient Vobis
2013-09-15 18:50 - 2006-08-02 20:07 - 00000000 ____D C:\Program Files\ZipCentral
2013-09-15 11:03 - 2013-09-15 10:37 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-09-15 10:10 - 2013-09-15 10:10 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji\Macromedia
2013-09-15 10:10 - 2013-09-15 10:10 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji\Adobe
2013-09-15 10:10 - 2006-03-10 13:02 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji
2013-09-15 10:02 - 2007-08-20 15:01 - 00000000 ____D C:\Documents and Settings\Klient Vobis\Ustawienia lokalne\Dane aplikacji\Google
2013-09-13 13:12 - 2011-12-29 09:25 - 00000000 ____D C:\Documents and Settings\All Users\Lx_cats
2013-09-12 13:46 - 2006-03-10 13:33 - 00351384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-09-12 11:22 - 2013-09-12 11:21 - 00012644 _____ C:\WINDOWS\KB2870699-IE8.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00066870 _____ C:\WINDOWS\iis6.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00061826 _____ C:\WINDOWS\FaxSetup.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00029560 _____ C:\WINDOWS\ocgen.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00028290 _____ C:\WINDOWS\tsoc.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00020558 _____ C:\WINDOWS\comsetup.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00019274 _____ C:\WINDOWS\msmqinst.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00012465 _____ C:\WINDOWS\ntdtcsetup.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00010830 _____ C:\WINDOWS\netfxocm.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00004250 _____ C:\WINDOWS\MedCtrOC.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00003860 _____ C:\WINDOWS\ocmsn.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00003190 _____ C:\WINDOWS\tabletoc.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00003090 _____ C:\WINDOWS\msgsocm.log
2013-09-12 11:22 - 2013-08-15 14:05 - 00001374 _____ C:\WINDOWS\imsins.log
2013-09-12 11:21 - 2013-08-15 14:05 - 00007435 _____ C:\WINDOWS\updspapi.log
2013-09-12 11:19 - 2013-09-12 11:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-09-12 11:19 - 2013-09-12 11:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-09-12 11:19 - 2013-09-12 11:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-09-12 11:19 - 2013-09-12 09:57 - 00010608 _____ C:\WINDOWS\KB2876315.log
2013-09-12 11:19 - 2013-09-12 09:56 - 00009983 _____ C:\WINDOWS\KB2876217.log
2013-09-12 11:19 - 2013-09-12 09:55 - 00009080 _____ C:\WINDOWS\KB2864063.log
2013-09-12 11:19 - 2013-08-15 14:05 - 00001374 _____ C:\WINDOWS\imsins.BAK
2013-09-12 11:16 - 2013-08-15 14:07 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-09-12 11:03 - 2006-08-02 20:42 - 76725432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-09-12 09:56 - 2012-08-10 10:15 - 00002347 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader X.lnk
2013-09-12 09:56 - 2006-03-10 13:34 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy
2013-09-10 08:55 - 2006-03-10 13:33 - 00000000 ___RD C:\Documents and Settings\Klient Vobis\Moje dokumenty\Moje obrazy
2013-09-04 12:47 - 2006-08-03 17:35 - 00000000 ____D C:\Documents and Settings\Klient Vobis\Pulpit\Oferty
2013-09-04 12:18 - 2013-09-04 12:18 - 00013824 _____ C:\Documents and Settings\Klient Vobis\Moje dokumenty\COMMON-oferta na wentylację.xls
2013-09-03 10:03 - 2013-09-03 10:03 - 00001684 _____ C:\Documents and Settings\Klient Vobis\Moje dokumenty\fundament prasa - blok 3 - układ zbrojenia + technologia 29.08.dsd
2013-08-30 10:22 - 2013-08-30 10:22 - 00004135 _____ C:\WINDOWS\KB2834904-v2.log
2013-08-30 10:22 - 2013-08-30 10:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-08-30 08:44 - 2007-09-15 15:04 - 00000000 ____D C:\Documents and Settings\Klient Vobis\Dane aplikacji\Skype
2013-08-28 21:02 - 2013-08-15 14:05 - 00000341 _____ C:\WINDOWS\setupact.log
2013-08-24 15:49 - 2012-05-01 13:02 - 00001698 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Security Essentials.lnk
2013-08-24 15:49 - 2011-12-12 18:59 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-08-24 15:15 - 2013-08-24 15:15 - 00000729 _____ C:\WINDOWS\DtcInstall.log
2013-08-18 13:15 - 2006-10-26 16:14 - 00000000 ____D C:\WINDOWS\Microsoft.NET

Some content of TEMP:
====================
C:\Documents and Settings\Klient Vobis\Ustawienia lokalne\Temp\AcDeltree.exe
C:\Documents and Settings\Klient Vobis\Ustawienia lokalne\Temp\aetpkss1.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-04 14:00] - [2008-04-14 19:21] - 1035264 ____N (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\Windows\System32\winlogon.exe
[2004-08-04 14:00] - [2008-04-14 19:21] - 0510464 ____N (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\Windows\System32\svchost.exe
[2004-08-04 14:00] - [2008-04-14 19:21] - 0014336 ____N (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\Windows\System32\services.exe
[2004-08-04 14:00] - [2009-02-09 13:25] - 0111104 ____N (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\Windows\System32\User32.dll
[2004-08-04 14:00] - [2008-04-14 19:20] - 0580096 ____N (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\Windows\System32\userinit.exe
[2004-08-04 14:00] - [2008-04-14 19:21] - 0026624 ____N (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\Windows\System32\Drivers\volsnap.sys
[2004-08-04 14:00] - [2008-04-14 18:01] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================